$ rpki-client -vvf rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft File: RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft (raw, json) Hash identifier: B9w3BvOMSMWrSfxcegn8wSibEJK/CPmHMHiS3qyfgW4= Subject key identifier: A4:8A:23:F7:AD:B1:EB:62:E4:46:C1:D0:1E:2D:95:6A:7B:B8:42:3A Authority key identifier: 44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87 Certificate issuer: /CN=A91807BB/serialNumber=44F9C4DA47E6371FD1C9F9F8E564D1803A0F3287 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft Manifest number: A0 Signing time: Tue 05 Aug 2025 06:47:25 +0000 Manifest this update: Tue 05 Aug 2025 06:47:25 +0000 Manifest next update: Tue 12 Aug 2025 06:47:25 +0000 Files and hashes: 1: RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl (hash: atXegIxlyEvqPWIQvS48QvT3LUkn2NMEn9lIz7jUDk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 06:47:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91807BB, serialNumber=44F9C4DA47E6371FD1C9F9F8E564D1803A0F3287 Validity Not Before: Aug 5 06:47:25 2025 GMT Not After : Aug 12 06:47:25 2025 GMT Subject: CN=6891a8fd-c021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1d:5a:9a:e5:f1:bc:bc:c3:ce:76:f9:49:51: bc:26:f5:d3:56:6d:41:68:85:ae:40:df:b0:57:06: 26:c4:af:83:24:56:28:46:fe:ff:a2:25:44:be:d6: b5:af:5d:3b:19:24:25:13:83:cf:3b:e3:03:7f:90: 05:5e:c7:f0:fa:ae:0c:18:cb:cd:3b:24:6b:97:48: 49:06:25:a4:9b:00:c8:61:af:a0:b4:80:1b:12:f6: aa:6f:94:19:64:7e:b2:c8:9f:1c:bb:ae:b7:fe:e6: 16:fe:14:ca:4e:d0:65:82:df:76:4f:e9:ce:7e:00: de:80:ce:a5:44:ff:02:8d:5a:66:c9:20:d1:9a:75: 6a:52:f4:fc:eb:38:c0:5a:dd:d5:b8:ad:24:91:99: fc:2d:6f:8b:49:fd:dd:18:fd:72:f7:89:b3:4d:d6: e3:8f:ad:8d:0c:ef:de:b9:d5:69:f0:78:e9:5c:b4: e1:78:66:ab:9c:9c:03:9e:87:55:ce:af:c6:03:d2: 4b:6a:3b:0b:6d:37:f9:f6:c4:5f:df:2a:c4:df:df: 8f:da:ba:8d:4d:93:f2:5d:5c:e7:60:ff:f4:e4:e1: 9c:dc:4d:e1:7c:26:75:f0:f9:59:c2:b3:b9:59:2b: 8f:cf:39:7d:68:0a:e2:b4:17:05:6b:fb:42:bf:1c: c4:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:8A:23:F7:AD:B1:EB:62:E4:46:C1:D0:1E:2D:95:6A:7B:B8:42:3A X509v3 Authority Key Identifier: keyid:44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:04:00:54:a5:f6:5a:02:ba:93:61:2c:a4:3b:1b:df:70:39: 66:f2:89:51:50:a6:97:8c:3c:79:95:85:dd:06:f5:03:db:a4: 08:f8:d3:f8:ab:2d:e5:e6:1d:56:7b:79:93:8e:91:69:a3:69: 17:b8:dd:d6:35:48:39:69:95:54:fe:2c:d8:1d:33:86:c5:f9: b6:02:e8:26:f6:21:67:35:5f:13:63:2e:89:2d:f8:b6:f9:65: 54:51:90:07:a3:c6:e1:01:f4:37:ea:b6:df:51:40:1e:c1:89: be:71:d7:b4:eb:a5:52:f3:fc:25:67:ef:9e:1b:c4:54:ca:d0: 6f:bd:b1:dd:44:ac:6f:a5:f1:93:01:80:e7:ae:1a:f5:46:3b: f4:a8:7b:49:c4:1e:9c:bd:19:fa:06:15:cb:c6:2c:b3:43:d3: f1:e6:a2:e2:3f:22:b6:e0:76:9f:eb:95:4a:d1:85:73:f8:91: 4e:21:35:5e:27:2c:2c:d0:23:16:a5:da:33:6d:b8:e3:67:e8: 42:e3:29:de:29:4b:cc:c6:8f:37:83:ea:ac:8b:8e:bd:a5:90: d4:d9:3c:8a:c2:73:d6:9b:fa:7f:ae:4d:18:61:18:30:1a:a5: fd:81:f5:5d:48:77:9e:86:6e:71:f7:9b:d5:53:90:a2:4a:8a: ac:42:16:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA3QkIxMTAvBgNVBAUTKDQ0RjlDNERBNDdFNjM3MUZEMUM5RjlGOEU1NjREMTgw M0EwRjMyODcwHhcNMjUwODA1MDY0NzI1WhcNMjUwODEyMDY0NzI1WjAYMRYwFAYD VQQDEw02ODkxYThmZC1jMDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAux1amuXxvLzDznb5SVG8JvXTVm1BaIWuQN+wVwYmxK+DJFYoRv7/oiVEvta1 r107GSQlE4PPO+MDf5AFXsfw+q4MGMvNOyRrl0hJBiWkmwDIYa+gtIAbEvaqb5QZ ZH6yyJ8cu663/uYW/hTKTtBlgt92T+nOfgDegM6lRP8CjVpmySDRmnVqUvT86zjA Wt3VuK0kkZn8LW+LSf3dGP1y94mzTdbjj62NDO/eudVp8HjpXLTheGarnJwDnodV zq/GA9JLajsLbTf59sRf3yrE39+P2rqNTZPyXVznYP/05OGc3E3hfCZ18PlZwrO5 WSuPzzl9aAritBcFa/tCvxzEFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSKI/et seti5EbB0B4tlWp7uEI6MB8GA1UdIwQYMBaAFET5xNpH5jcf0cn5+OVk0YA6DzKH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDdCQi8wQUU0ODI5MDdD QjMxMUVGOTZDOUYyNTBDNEY5QUUwMi9SUG5FMmtmbU54X1J5Zm40NVdUUmdEb1BN b2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JQbkUya2ZtTnhfUnlmbjQ1V1RSZ0RvUE1vYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDdCQi8wQUU0ODI5MDdDQjMxMUVGOTZDOUYyNTBDNEY5QUUwMi9SUG5FMmtmbU54 X1J5Zm40NVdUUmdEb1BNb2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArBABUpfZaArqTYSykOxvfcDlm8olRUKaXjDx5lYXdBvUD26QI+NP4 qy3l5h1We3mTjpFpo2kXuN3WNUg5aZVU/izYHTOGxfm2Augm9iFnNV8TYy6JLfi2 +WVUUZAHo8bhAfQ36rbfUUAewYm+cde066VS8/wlZ++eG8RUytBvvbHdRKxvpfGT AYDnrhr1Rjv0qHtJxB6cvRn6BhXLxiyzQ9Px5qLiPyK24Haf65VK0YVz+JFOITVe Jyws0CMWpdozbbjjZ+hC4yneKUvMxo83g+qsi469pZDU2TyKwnPWm/p/rk0YYRgw GqX9gfVdSHeehm5x95vVU5CiSoqsQhY6 -----END CERTIFICATE-----Generated at Thu Aug 7 04:42:04 2025 by rpki-client